IFirefox 66 ifike ezinsukwini ezi-4 ezedlule futhi isibuyekezo sesiyatholakala. IFirefox 66.0.1 ifika izolungisa izimbungulu ezimbili ezitholakala ku-Pwn2Own, uhlobo lomncintiswano lapho ababambiqhaza kufanele bathole ubungozi futhi babaxhaphaze. Okuhle ngale misebenzi ukuthi, okokuqala, ababambiqhaza bangakhombisa amakhono abo, angawavulela iminyango eminingi futhi, okwesibili, ukuthi izinkampani zithole izimbungulu ebezingazinakile noma ezazingazi ukuthi zikhona kwi-software yazo.
Amaphutha amabili atholakele zibekwe njengezibucayi yiMozilla uqobo futhi incoma ukuthi bonke abasebenzisi babuyekeze ngokushesha okukhulu. Ezinqolobaneni ze-APT, i-v66 isivele itholakala kepha, ngokubheka ukuthi kuthathe isikhathi esingakanani ukufika, singacabanga ukuthi sizokwazi ukulanda i-v66.0.1 entsha ngesinye isikhathi ngoMsombuluko olandelayo. Njengelukuluku, i- kakhulu iphakethe lesiphequluli esisesikhathini Uhlobo lweMozilla yiFirefox 65.0.2-1, okubonakala ngathi kusho ukuthi onjiniyela abajahi ukulayisha iphakheji ye-snap ebuyekeziwe ngoba ingavuselelwa nge-Push kusuka ngaphakathi kohlelo uqobo.
IFirefox 66.0.1 ilungisa izimbungulu ezimbili ezinkulu, ngokusho kweMozilla
Ukulungiswa kweFirefox 66.0.1 Ukuwa I-CVE-2019-9810 ne-CVE-2019-9813 itholwe nguRichard Zhu, u-Amat Cama, noNiklas Baumstark ngeTrend Micro's Zero Day Initiative. I-CVE-2019-9810 iyi- Inkinga yokugcwala kakhulu kwe-buffer kanye nokwehluleka kokubheka umkhawulo engekho kuFirefox 66 ngenxa yemininingwane engafanele ye-alias ku-IonMonkey JIT compiler yendlela ye-Array.prototype.slice. Ngakolunye uhlangothi, i-CVE-2019-9813 ichaza inkinga yokudideka yokubhala ekhona ku-IonMonkey JIT, ikakhulukazi kwikhodi yayo. Lokhu kuba sengozini kuvumele umhlaseli ukuthi abhale imemori engenakuphikiswa ngenxa yokuphathwa kabi kwezimpawu ze-__proto_mutations.
Abasebenzisi beWindows nabakwaMacOS bangabuyekeza ngqo kusuka kuFirefox, kusuka ku-Usizo noma kusuka kwisexwayiso okufanele sivele esikrinini ngokushesha nje lapho bevula. Abasebenzisi beLinux bangenza okufanayo uma sine-snap version yeFirefox efakiwe. Uma lokhu kungenjalo, futhi angikwenzi ngoba ngibona iFirefox ehlukile, singalanda ama-binaries bese siwakopisha kufolda yeFirefox ukuze sisebenzise inguqulo yakamuva. Mina uqobo angizange ngiyincome, ngakho-ke into enhle kakhulu ukulinda, mhlawumbe amahora angama-48, kuze kube yilapho iFirefox 66.0.1 itholakala ezinqolobaneni izikhulu.
Ngabe ukhathazekile ngalezi zinambuzane ezimbili ezilungiswa yiFirefox 66.0.1?
